Top 23 Rust Authentication Projects

• Ockam

  76 4,347 10.0 Rust

  Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.

  

Project mention: Tunnelmole, an ngrok alternative (open source) | news.ycombinator.com | 2024-03-21

disclosure: I work at Ockam.

The Portals for Mac app is an example of the type of thing you could build using the open source stack of protocols. The README (linked by parent) links out to all of the relevant parts of the protocol documentation to explain how these work together. The NAT Traversal (https://github.com/build-trust/ockam/blob/develop/examples/a...) part of the README is probably the best explanation of why the free relay you get via Ockam Orchestrator is a useful part of this demo.

As for why would anyone trust this: The protocols are designed so you absolutely don't have to trust the relay. Trust is pushed out to the edges that you control and so you're not susceptible to a MITM attack if something like a relay is compromised. The protocol design for all of this is open and documented, and was independently audited by (IMO) some of the best in the business, Trail of Bits: https://docs.ockam.io/reference/protocols.

• lldap

  76 3,473 9.2 Rust

  Light LDAP implementation

  

Project mention: Keycloak SSO with Docker Compose and Nginx | news.ycombinator.com | 2024-02-11

Good to hear, I think it'll make many users happy. For me, I've migrated back to Authelia. I moved to authentik because at the time Authelia had no user management. After all of authentik's sharp edges, I've found lldap[0], and was able to implement a pilot in a few hours. I haven't looked back, since everything was converted.

[0]: https://github.com/lldap/lldap

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• kanidm

  12 2,097 9.8 Rust

  Kanidm: A simple, secure and fast identity management platform

  

Project mention: Identity Management Solutins | /r/openSUSE | 2023-05-25

Check this: https://github.com/kanidm/kanidm/ Maybe not production ready, but looks very promising

• rust-jwt

  2 1,540 7.0 Rust

  JWT lib in rust

• sudo_pair

  4 1,230 0.0 Rust

  Plugin for sudo that requires another human to approve and monitor privileged sudo sessions

  

• GlobalProtect-openconnect

  15 1,127 8.3 Rust

  A GlobalProtect VPN client for Linux, written in Rust, based on OpenConnect and Tauri, supports SSO with MFA, Yubikey, etc.

Project mention: GlobalProtect VPN and browser configuration | /r/ManjaroLinux | 2023-09-15

In order to reach a client's domain for a project, my team needs to use a VPN and the instructions were pretty clear regarding which tool to use - GlobalProtect VPN - so I've installed https://github.com/yuezk/GlobalProtect-openconnect and was able to connect successfully.

• axum-login

  5 440 8.7 Rust

  🪪 User identification, authentication, and authorization for Axum.

Project mention: Show HN: Axum-login, simple and flexible user auth for your Rust axum projects | news.ycombinator.com | 2024-02-19

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• internet-identity

  17 366 9.8 Rust

  Internet Identity, a blockchain authentication system for the Internet Computer

  

• openidconnect-rs

  3 333 7.8 Rust

  OpenID Connect Library for Rust

Project mention: OAuth/Open ID server capabilities | /r/rust | 2023-06-04

• frank_jwt

  355 250 3.1 Rust

  JSON Web Token implementation in Rust.

Project mention: Show HN: Storing Private Keys in the Browser Securely | news.ycombinator.com | 2024-04-23

• biscuit-rust

  17 201 7.2 Rust

  Rust implementation of the Biscuit authorization token

  

Project mention: Authorization is still a nightmare for engineers | news.ycombinator.com | 2024-04-16

> We have a post on this coming soon! The short version is that Polar is a logic language based on Prolog/Datalog/miniKanren. And logic languages are a particularly good fit for representing the branching conditional logic you often see in authorization configurations.

Ha, I've been playing around with Biscuits (https://www.biscuitsec.org/) and was writing up a blog post on using them in a git forge. When I saw the Polar data units described as "facts" and read your end to end example (https://www.osohq.com/docs/tutorials/end-to-end-example) I thought "Oh this looks very similar". I will say - I do like how Polar seems to type stuff and provide some concepts that Biscuits force you to build out on your own, that's pretty neat.

What is the proof of identity in Polar? Is it something like a token in Biscuits? I'm curious if you can do things like add caveats to reduce what the token is capable of as it gets handed off to different systems. I consider that one of the "killer use cases" of biscuits.

• cotp

  2 169 9.4 Rust

  Trustworthy, encrypted, command-line TOTP/HOTP authenticator app with import functionality.

• rauthy

  2 165 9.9 Rust

  OpenID Connect Single Sign-On Identity & Access Management

Project mention: Rauthy OIDC v0.19 — Better support for Solid and Matrix | /r/SelfhostingHub | 2023-11-18

• nforwardauth

  7 101 8.5 Rust

  Simple and minimalist forward auth service intended for use with reverse proxies (Traefik, Caddy, nginx, etc)

Project mention: nforwardauth - simple and minimalist forward auth service intended for use with reverse proxies (Traefik, Caddy, etc). added basic auth and logout support | /r/SelfhostingHub | 2023-08-04

• firestore-db-and-auth-rs

  1 95 5.3 Rust

  Easy Rust access to your Google Firestore DB via service account or OAuth impersonated Google Firebase Auth credentials

• pam

  1 80 5.7 Rust

  Safe Rust API to the Linux Pluggable Authentication Modules (PAM) (by 1wilkens)

• rocket_auth

  2 74 0.0 Rust

  An implementation for an authentication API for Rocket applications.

• sqlx-adapter

  1 44 6.5 Rust

  Asynchronous casbin adapter for mysql, postgres, sqlite based on sqlx-rs

  

• axum-casbin

  1 31 5.2 Rust

  Axum authorization middleware based on Casbin

  

Project mention: Backend API recommendations | /r/rust | 2023-05-29

i haven't done rbac with rust but stuff like this looks promising: https://github.com/casbin-rs/axum-casbin (seems you'd use it in conjunction with the authorization tower middleware)

• axum-shuttle-postgres-authentication-demo

  1 19 3.6 Rust

  Full stack authenticated site built in Rust with Axum, Postgres and Shuttle

• pam-sys

  1 15 5.2 Rust

  Rust FFI bindings to the Linux Pluggable Authentication Modules (PAM)

• srp6-rs

  1 14 0.0 Rust

  A safe implementation of the secure remote password authentication and key-exchange protocol (SRP and SRP6a)

• forbidden

  5 10 0.0 Rust

  An auth system/library for Rust applications

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Rust Authentication related posts

• Authorization is still a nightmare for engineers
  6 projects | news.ycombinator.com | 16 Apr 2024
• Alt to Ngrok, Written in Rust
  1 project | news.ycombinator.com | 6 Mar 2024
• Show HN: Axum-login, simple and flexible user auth for your Rust axum projects
  1 project | news.ycombinator.com | 19 Feb 2024
• How we built a Swift app that uses Rust
  1 project | dev.to | 28 Dec 2023
• Biscuit Authorization
  4 projects | news.ycombinator.com | 13 Dec 2023
• Shared data through ( ASKAMA template engine ) like username for all pages?
  1 project | /r/rust | 10 Dec 2023
• Anyone else using LLDAP and if so... (can it do TrueNAS & Linux User/Login authentication?)
  1 project | /r/selfhosted | 23 Nov 2023
• A note from our sponsor - SaaSHub
  www.saashub.com | 25 Apr 2024

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Rust projects with our weekly report!